Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-06-20_3e4bcd3646436cb2c94fcabdbb8fa409_cryptolocker

  • Size

    45KB

  • Sample

    240620-e1bm9aydnc

  • MD5

    3e4bcd3646436cb2c94fcabdbb8fa409

  • SHA1

    609b6b96499e9e76340781668806bfd9e94c74ae

  • SHA256

    87e2969f0834cbcb3302beef33a10259157fcbab16af383743900fcd5e9454c7

  • SHA512

    f5e84196aad41efcc525523230c75219303fa3b70cfc2d132ff118d4d6837c3871a16d027fed1b3f7f3b83f9e43cbc0e64c5e69ae51949394fbe93af2de78684

  • SSDEEP

    384:bm74uGLLQRcsdeQ72ngEr4K7YmE8jb0nrlwfjDUk3b+N3:bm74zYcgT/EkM0ryfjd3W3

Score
10/10

Malware Config

Targets

    • Target

      2024-06-20_3e4bcd3646436cb2c94fcabdbb8fa409_cryptolocker

    • Size

      45KB

    • MD5

      3e4bcd3646436cb2c94fcabdbb8fa409

    • SHA1

      609b6b96499e9e76340781668806bfd9e94c74ae

    • SHA256

      87e2969f0834cbcb3302beef33a10259157fcbab16af383743900fcd5e9454c7

    • SHA512

      f5e84196aad41efcc525523230c75219303fa3b70cfc2d132ff118d4d6837c3871a16d027fed1b3f7f3b83f9e43cbc0e64c5e69ae51949394fbe93af2de78684

    • SSDEEP

      384:bm74uGLLQRcsdeQ72ngEr4K7YmE8jb0nrlwfjDUk3b+N3:bm74zYcgT/EkM0ryfjd3W3

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks